EUVD-2018-1920

Malware in sbrugna...

PT-2020-3605 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.4.1 WordPress versions 5.3.3, 5.2.6, 5.1.5, 5.0.9, 4.9.14, 4.8.13, 4.7.17, 4.6.18, 4.5.21, 4.4.22, 4.3.23, 4.2.27, 4.1.30, 4.0.30, 3.9.31, 3.8.33, 3.7.33 Description: The issue is related to the render block core...

CVE-2018-1000526

Openpsa contains a XML Injection vulnerability in RSS file upload feature that can result in Remote denial of service. This attack appear to be exploitable via Specially crafted XML file. This vulnerability appears to have been fixed in after commit 4974a26...

Blue River Interactive Mura CMS XML External Entity Injection Vulnerability

Blue River Interactive Mura CMS is the United States Blue River Interactive company's set of CFML-based open source content management system CMS. The system supports user rights management , customizable templates and layouts , plug-in extensions and so on. A security vulnerability exists in the...

Design/Logic Flaw

Untrusted search path vulnerability in Microsoft Windows Server 2008 R2 and Windows 7, when BranchCache is supported, allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an EML file, an RSS file, or a WPOST...

PT-2006-6446 · Unknown · Article Script

Name of the Vulnerable Software and Affected Versions: Article Script versions 1.6.3 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the category parameter in the rss.php file. Recommendations: For Article Script versions 1.6.3 an...

PT-2006-2940 · Joomla +1 · Joomla! +1

Name of the Vulnerable Software and Affected Versions: Mambo affected versions not specified Joomla! affected versions not specified Description: The issue allows remote attackers to obtain sensitive information via an invalid feed parameter, which reveals the path in an error message. This is...